65 results found
-
Only allow login from MAC-addresses.
Its good to have the option to only login in from IP-addresses, but would be a lot more powerful if only allowing login from certain MAC-addresses. This way it has to be your machine you are login into.
Once the admin selects this feature in the admin portal, the change has to be approved with a MFA prompt. So the admin has to have MFA setup before moving on to the MAC-address option. When the approval is granted the MAC-address from the admin computer is automatically added as a approved MAC-address, so not to lock out the admin from the…
1 vote -
Atera Back up
Backing up or exporting files: We spend all of our lives backing up things for our customers, feels uncomfortable not to back up our databased. if Atera is hacked and if we don't have a back up and we will have a problem. It would be a facility to have a backup of Atera. It is not about migrating to a new service. Us knowing we have a secure backup every week and every night.
56 votes -
Let us choose which endpoints are excempt from Remote Access (AnyDesk) deployment
By default AnyDesk get pushed to all endpoints (including servers which have the Atera Agent installed). While this is nice for user Machines - it's less then ideal for servers... Give us the option to exclude machines from AnyDesk Deployment. Or better yet: let us choose on which machines (machine type) we want to install anydesk
7 votes -
Obfuscate Or Encrypt Scripts [important]
So imo, scripts that are batch or powershell that are ran are stored in the location - C:\Program Files\ATERA Networks\AteraAgent\Packages\AgentPackageSystemTools
Need to be obfuscated or encrypted somehow because they show up in clear text if they are stuck, sometimes these scripts could have a hardcoded password that are needed to work for instance runas etc.... Yeah, I have a script to delete all *.bat and *.ps1 - this is not an answer though.
All it takes is one kid that knows how to work on a vcr to mess things up!
1 vote -
ipv6 firewall
in the admin menu there is a possibility to use a whitelist. because we think security is really important we use both 2FA and the ip whitelist.
we miss 2 options:
- the possibility to whitelist IPv6 addresses
- the possibility to ad notes next to every ip-address that is whitelisted. (Like: branch office, datacentre, etc etc.)1 vote -
Multiple api keys per account
Huge security risk to only have a singly read/write API key - I see there are suggestions for separate read/write one but realistically we should be generating keys per app and have the option to limit the scope to specific features or customers.
The API key gets transferred in the clear on PowerShell scripts to a customer device - so there really needs to be some improvements in this area.
45 votes -
2FA Using FIDO Security Keys
Please integrate 2 factor authentication using FIDO keys (i.e. YubiKey or Google Titan). This is already supported by Auth0.
17 votes -
2FA verification on site delete
It is crucial for us to have a 2FA check when deleting bulk of data, such as a site.
7 votes -
API Key - restrict by IP or FQDN
Configure the IP or FQDN that the API Key can be called from.
5 votes -
Screen Lock
Being able to enforce screen lock times in the portal and not by script would be a great way to ensure security and be able to view that status.
6 votes -
Change linux command prompt / terminal user
Command prompt / terminal is opened as root. It would be great to define another user account which lower privileges. Also the terminal is not working if root has /sbin/nologin set.
2 votes -
Filevault
We currently Run Mac, Windows and Linux. A way to pull the Filevault recovery key just like the bitlocker key would be useful when users are traveling and have an issue. You can not always ensure that they have a copy of their key laying around in case of damage that needs to be repaired before they can return home.
5 votes -
Option to Disable ChatGPT in Atera.
While the risks of ChatGPT and AI are still being identified, Atera should implement an On\Off button, giving organizations the ability to turn off ChatGPT until they are comfortable with the risks.
3 votes -
4 votes
-
Security and Authentication
Add a description to the Access List. Although the IP address helps identify the location, adding a description will help navigation and identification.
2 votes -
Remotely allow installation of reviewed and approved software to non admins
Allow dashboard notification for users attempting to install their own software, that do not have administrative permissions to do so. Give technicians the ability to review and then authorize installation that would "temporarily" grant admin permissions to that specific instance
3 votes -
ISO 27001 and 27002
ISO 27001 and 27002
4 votes -
Scripts should not need the API Key for custom fields
To obtain custom field data in an automated script, the API Key is required to be in the script in plain text.
The agent on the end point running the script should already have access to the custom fields in its own asset and parent customer records.
Please create a Atera Powershell module that can obtain custom field data without requiring the API Key.3 votes -
Windows update 0-day threats
When there are 0-day threats, it would be great to target machines with the 0-day patches released from Microsoft etc... and made available from the Software Installation option and being able to search for the KB number to deploy.
Alternatively if Atera had its own storage available to its customers to reference for the afore mentioned updates. Customers could download their own patches and search for them to be deployed centrally.13 votes -
Login to Atera with Windows Hello through Auth0 on multiple devices.
Please consider allowing more than 1 device to login to Atera with Windows Hello credentials through Auth0.
17 votes
- Don't see your idea?